Weak Password Recovery Mechanism for Forgotten Password

The product contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.

CVEs (269)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-5686 1Zpanelcp 1Zpanel Nov 21, 2024 Feb 4, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 ZPanel 10.0.1 has insufficient entropy for its password reset process.
CVE-2012-5618 1Ushahidi 1Ushahidi Nov 21, 2024 Feb 4, 2020 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Ushahidi before 2.6.1 has insufficient entropy for forgot-password tokens.
CVE-2020-7245 1Ctfd 1Ctfd Nov 21, 2024 Jan 23, 2020 N/A· v4 9.8 CRITICAL· v3 6.8 MEDIUM· v2 Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd instance. To exploit the...Show more Incorrect username validation in the registration process of CTFd v2.0.0 - v2.2.2 allows an attacker to take over an arbitrary account if the username is known and emails are enabled on the CTFd instance. To exploit the vulnerability, one must register with a username identical to the victim's username, but with white space inserted before and/or after the username. This will register the account with the same username as the victim. After initiating a password reset for the new account, CTFd will reset the victim's account password due to the username collision.Show less
CVE-2009-5025 1Pyforum Project 1Pyforum Nov 21, 2024 Jan 15, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A backdoor (aka BMSA-2009-07) was found in PyForum v1.0.3 where an attacker who knows a valid user email could force a password reset on behalf of that user.
CVE-2019-20004 1Intelbras 1Iwr 3000n Firmware Nov 21, 2024 Jan 5, 2020 N/A· v4 8.8 HIGH· v3 4.3 MEDIUM· v2 An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address,...Show more An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.Show less
CVE-2019-19844 2Canonical Djangoproject 2Django Ubuntu Linux Nov 21, 2024 Dec 18, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters)...Show more Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A suitably crafted email address (that is equal to an existing user's email address after case transformation of Unicode characters) would allow an attacker to be sent a password reset token for the matched user account. (One mitigation in the new releases is to send password reset tokens only to the registered user email address.)Show less
CVE-2019-17392 1Progress 1Sitefinity Nov 21, 2024 Nov 26, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Progress Sitefinity 12.1 has a Weak Password Recovery Mechanism for a Forgotten Password because the HTTP Host header is mishandled.
CVE-2019-18818 1Strapi 1Strapi Nov 21, 2024 Nov 7, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js.
CVE-2019-15929 1Craftcms 1Craft Cms Nov 21, 2024 Oct 24, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 In Craft CMS through 3.1.7, the elevated session password prompt was not being rate limited like normal login forms, leading to the possibility of a brute force attempt on them.
CVE-2019-15749 1Sitos 1Sitos Six Nov 21, 2024 Oct 7, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 SITOS six Build v6.2.1 allows a user to change their password and recovery email address without requiring them to confirm the change with their old password. This would allow an attacker with access to the victim's acco...Show more SITOS six Build v6.2.1 allows a user to change their password and recovery email address without requiring them to confirm the change with their old password. This would allow an attacker with access to the victim's account (e.g., via XSS or an unattended workstation) to change that password and address.Show less
CVE-2019-14955 1Jetbrains 1Hub Nov 21, 2024 Oct 1, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented.
CVE-2019-12943 1Ttlock 1Ttlock Nov 21, 2024 Sep 10, 2019 N/A· v4 8.1 HIGH· v3 2.6 LOW· v2 TTLock devices do not properly restrict password-reset attempts, leading to incorrect access control and disclosure of sensitive information about valid account names.
CVE-2019-13240 1Glpi Project 1Glpi Nov 21, 2024 Jul 10, 2019 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in GLPI before 9.4.1. After a successful password reset by a user, it is possible to change that user's password again during the next 24 hours without any information except the associated email...Show more An issue was discovered in GLPI before 9.4.1. After a successful password reset by a user, it is possible to change that user's password again during the next 24 hours without any information except the associated email address.Show less
CVE-2019-10270 1Ultimatemember 1Ultimate Member Nov 21, 2024 Jun 21, 2019 N/A· v4 8.8 HIGH· v3 4.0 MEDIUM· v2 An arbitrary password reset issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It is possible (due to lack of verification and correlation between the reset password key sent by mail and the user_id p...Show more An arbitrary password reset issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It is possible (due to lack of verification and correlation between the reset password key sent by mail and the user_id parameter) to reset the password of another user. One only needs to know the user_id, which is publicly available. One just has to intercept the password modification request and modify user_id. It is possible to modify the passwords for any users or admin WordPress Ultimate Members. This could lead to account compromise and privilege escalation.Show less
CVE-2019-3787 1Pivotal Software 1Cloud Foundry Uaa Release Nov 21, 2024 Jun 19, 2019 N/A· v4 8.8 HIGH· v3 4.3 MEDIUM· v2 Cloud Foundry UAA, versions prior to 73.0.0, falls back to appending “unknown.org” to a user's email address when one is not provided and the user name does not contain an @ character. This domain is held by a private co...Show more Cloud Foundry UAA, versions prior to 73.0.0, falls back to appending “unknown.org” to a user's email address when one is not provided and the user name does not contain an @ character. This domain is held by a private company, which leads to attack vectors including password recovery emails sent to a potentially fraudulent address. This would allow the attacker to gain complete control of the user's account.Show less
CVE-2019-12476 1Zohocorp 1Manageengine Adselfservice Plus Nov 21, 2024 Jun 17, 2019 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 An authentication bypass vulnerability in the password reset functionality in Zoho ManageEngine ADSelfService Plus before 5.0.6 allows an attacker with physical access to gain a shell with SYSTEM privileges via the restr...Show more An authentication bypass vulnerability in the password reset functionality in Zoho ManageEngine ADSelfService Plus before 5.0.6 allows an attacker with physical access to gain a shell with SYSTEM privileges via the restricted thick client browser. The attack uses a long sequence of crafted keyboard input.Show less
CVE-2018-16988 1Xdmod 1Open Xdmod Nov 21, 2024 May 2, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 An issue was discovered in Open XDMoD through 7.5.0. An authentication bypass (account takeover) exists due to a weak password reset mechanism. A brute-force attack against an MD5 rid value requires only 600 guesses in t...Show more An issue was discovered in Open XDMoD through 7.5.0. An authentication bypass (account takeover) exists due to a weak password reset mechanism. A brute-force attack against an MD5 rid value requires only 600 guesses in the plausible situation where the attacker knows that the victim has started a password-reset process (pass_reset.php, password_reset.php, XDUser.php) in the past few minutes.Show less
CVE-2019-11414 1Intelbras 1Iwr 3000n Firmware Nov 21, 2024 Apr 22, 2019 N/A· v4 8.8 HIGH· v3 4.3 MEDIUM· v2 An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address,...Show more An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.Show less
CVE-2019-11393 1Tildeslash 1Monit Nov 21, 2024 Apr 22, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter.
CVE-2019-10641 1Contao 1Contao Cms Nov 21, 2024 Apr 17, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password.

Previous 1...101112 13 14 Next